Detalhes da oferta
Randstad Professionals is specialized in the recruitment of middle and senior positions.Our client is Vision-Box, that develops state-of-the-art user-centric citizen touchpoints, custom front-end applications, and collaborative orchestration software, towards a premium experience and service level.
The company has more than 21 years of highly specialized experience, delivering cutting edge technology to Airports, Airlines, and Governments.
responsabilidades chave
- Identify security vulnerabilities in the Vision-Box products and implement necessary solutions to remediate the vulnerabilities;
- Review cloud and on-premises deployment architectures and implement required security controls;
- Identify manual processes that can be smartly automated;
- Ensure security best practice is followed and provide solutions to improve existing infrastructure processes in the company;
- Set security best practices for cloud security;
- Define documentation of security requirements for applications (web, mobile, host, SOA, etc.);
- Mentor other engineers, define our technical culture, and help build a fast-growing team;
- Contribute to tool evaluation, selection and recommendation internally;
- Participate in execution of training program for different teams;
- Work with senior management on defining roadmaps, needs and provide short and mid-term forecasting;
- Contribute to as a Subject Matter Expert & internal professional community.
competências
- Masters degree in computer science, Telecommunications or Information Security;
- At least 3 years of experience in the Application Development (DevOps);
- At least 1 year of experience in Application Security Testing;
- Hands-on experience in Cloud Environments and on-premises Data Centre;
- Good skills in at least one or more scripting languages; Python, or Shell/PowerShell;
- Experience in management and definition of security in the software development lifecycle (SDLC);
- Experience in software development and SDLC in Java, Python, C#, etc..;
- Knowledge of conducting security checks (static and dynamic code analysis, vulnerability analysis in applications and penetration tests, security component analysis);
- Understanding or virtualization and container technologies (Docker, Kubernetes, OpenShift, );
- Experience with OWASP Testing Guide v3 / 4 and OWASP TOP 10;
- Knowledge of securing APIs;
- Experience in Web and/or Mobile applications and common vulnerabilities;
- Communications skills including the ability to understand client process in any area in detail;
- Business writing skills (capturing needs and writing it down on formal documents);
- Reliable and with attention to detail.
- Nice to have:
- Certifications such as CSSLP, CISSP, CISA, etc;
- Certifications from pentesting vendors (OSCP, CEH,);
- SAST & DAST tools related education and certificates;
- Knowledge of security in micro-services.
principais benefícios
opportunity to work in a challenging environment with dynamic teams and innovative projects.
| Distrito | Lisboa | ||||||
|---|---|---|---|---|---|---|---|
| Local | Lisboa | ||||||
| Sector de actividade | TI, Telecomunicações e Comunicação | ||||||
| Tipo de contrato | Full-time | ||||||
| Tipo de oferta | Emprego | ||||||
| Contactos |
Randstad Portugal
Avenida da República, 26 1069-228 Lisboa Portugal
|